Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
transmission vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-46680
A CWE-319: Cleartext transmission of sensitive information vulnerability exists that could cause disclosure of sensitive information, denial of service, or modification of data if an attacker is able to intercept network traffic.
Schneider-electric Powerlogic Ion9000 Firmware
Schneider-electric Powerlogic Ion7400 Firmware
Schneider-electric Powerlogic Pm8000 Firmware
Schneider-electric Powerlogic Ion8650 Firmware -
Schneider-electric Powerlogic Ion8800 Firmware -
7.5
CVSSv2
CVE-2022-21798
The affected product is vulnerable due to cleartext transmission of credentials seen in the CIMPLICITY network, which can be easily spoofed and used to log in to make operational changes to the system.
Ge Cimplicity
10
CVSSv2
CVE-2004-2421
Unknown vulnerability in Hitachi Job Management Partner (JP1) JP1/File Transmission Server/FTP 6 and 7, when running on HP-UX in trusted mode, allows malicious users to bypass authentication and gain administrator rights.
Hitachi Jp1 P-1b41-9461 06 00 H
Hitachi Jp1 P-1b41-9461 06 01 D
Hitachi Jp1 P-1b41-9461 06 02-b
Hitachi Jp1 P-1j41-9471 07 10 A
Hitachi Jp1 P-1b41-9461 06 02 C
Hitachi Jp1 P-1b41-9471 07 00 A
Hitachi Jp1 P-1b41-9471 07 10
Hitachi Jp1 P-1b41-9471 07 10 A
Hitachi Jp1 P-1j41-9471 07 00
Hitachi Jp1 P-1j41-9471 07 10
5
CVSSv2
CVE-2012-3025
The default configuration of Tridium Niagara AX Framework up to and including 3.6 uses a cleartext base64 format for transmission of credentials in cookies, which allows remote malicious users to obtain sensitive information by sniffing the network.
Tridium Niagara Ax
5
CVSSv2
CVE-2014-8068
Adobe Digital Editions (DE) 4 does not use encryption for transmission of data to adelogs.adobe.com, which allows remote malicious users to obtain sensitive information by sniffing the network, as demonstrated by book-navigation information.
Adobe Digital Editions 4.0
4.3
CVSSv2
CVE-2019-6846
A CWE-319: Cleartext Transmission of Sensitive Information vulnerability exists in Modicon M580, Modicon M340, Modicon BMxCRA and 140CRA modules (all firmware versions), which could cause information disclosure when using the FTP protocol.
Schneider-electric Modicon M580 Firmware
Schneider-electric Modicon M340 Firmware
Schneider-electric Modicon Bmxcra Firmware
Schneider-electric Modicon 140cra Firmware
4
CVSSv2
CVE-2015-5331
Moodle 2.9.x prior to 2.9.3 does not properly check the contact list before authorizing message transmission, which allows remote authenticated users to bypass intended access restrictions and conduct spam attacks via the messaging API.
Moodle Moodle 2.9.2
Moodle Moodle 2.9.1
Moodle Moodle 2.9.0
6.8
CVSSv2
CVE-2019-11332
MKCMS 5.0 allows remote malicious users to take over arbitrary user accounts by posting a username and e-mail address to ucenter/repass.php, which triggers e-mail transmission with the password, as demonstrated by 123456.
Mkcms Project Mkcms 5.0
4.3
CVSSv2
CVE-2021-20154
Trendnet AC2600 TEW-827DRU version 2.08B01 contains an security flaw in the web interface. HTTPS is not enabled on the device by default. This results in cleartext transmission of sensitive information such as passwords.
Trendnet Tew-827dru Firmware 2.08b01
5
CVSSv2
CVE-2020-8583
Element Software versions before 12.2 and HCI versions before 1.8P1 are susceptible to a vulnerability which could allow an malicious user to discover sensitive information by intercepting its transmission within an https session.
Netapp Hci
Netapp Element Os
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »